Presentation is loading. Please wait.

Presentation is loading. Please wait.

Securing Every Bit: Authenticated Broadcast in Wireless Networks Dan Alistarh, Seth Gilbert, Rachid Guerraoui, Zarko Milosevic, and Calvin Newport.

Published byJasmine Rodgers Modified over 8 years ago

Similar presentations

Presentation on theme: "Securing Every Bit: Authenticated Broadcast in Wireless Networks Dan Alistarh, Seth Gilbert, Rachid Guerraoui, Zarko Milosevic, and Calvin Newport."— Presentation transcript:

1 Securing Every Bit: Authenticated Broadcast in Wireless Networks Dan Alistarh, Seth Gilbert, Rachid Guerraoui, Zarko Milosevic, and Calvin Newport

2 The problem

3 Authenticated Broadcast N nodes distributed in an ad-hoc network A source node S has a message to distribute to other nodes Properties: – Reliable Broadcast: the message should be distributed to all honest devices – Authentication: an honest device should accept the message only if it originates at the source Challenge: We need to do this without cryptography!

4 The problem Figure 1. We need to deliver the message from the source S to the honest nodes (blue) in spite of the disruptive malicious adversaries (red).

5 Previous Results Distributed Computing Theory: – [Koo]: at most ≈ ¼ of nodes in a neighborhood may fail – [Bhandari, Vaidya]: optimally-resilient protocol – [Gilbert, Guerraoui, Newport]: bit-by-bit transmission is optimal in the single-hop case Applied Networking: – Hubaux et al., Strasser et al. : Integrity codes, transmission via frequency hopping, MAC protocols The Cryptographers: – Lower bound by Boneh et al. : either synchronization or digital signatures are required – Protocols: TESLA by Perrig et al.

6 Our results We introduce two protocols that solve the problem, without employing any cryptography. RobustRB: optimally resilient, and asymptotically optimal in terms of running time. FastRB: trades some resilience (in theory) for vastly improved efficiency.

7 The model Nodes know their location, are synchronized and agree on a communication (TDMA) schedule in advance The adversary is Byzantine: – Crash failures – Jamming – “Spoofing” messages The adversary may cause collisions; however, receivers are always able to detect the collisions The energy of the adversary in a neighborhood is limited

8 Plan 1.Introduction 2.RobustRB: the building blocks 3.FastRB: faster is better 4.Simulation and Performance 5.Conclusions

9 One-hop transmission

10 The idea: 1.the source broadcasts the message 2.the receiver broadcasts back the message 3.if the message received is the same as the one sent, then the source is silent 4.otherwise, the source broadcasts a “veto” message and repeats 5.The receiver replies with the veto 6.If it receives a veto, the source repeats = source is silent ≠ message This procedure works because the adversary cannot turn the “veto” into silence.

11 The two-hop case Q: Is there a problem in this configuration? A: Kein Problem!

12 The two-hop case Q: How about now? A: There are problems when sending multiple messages. Fix: Append an alternating “sequence bit” to every message. 1 1

13 Recap So far, we know how to send a message securely over one hop in a multi-hop network The sender repeats the entire message every time it receives a veto [Gilbert, Guerraoui, Newport]: In this setting, the optimal strategy is to send the message bit-by-bit over one hop.

14 The multi-hop case

15 RobustRB Sending message across multiple hops, given authenticated single-hop transmission Based on a protocol by [Bhandari-Vaidya] The protocol assumes that nodes know a bound T on the number of malicious nodes in a neighborhood The protocol tolerates ¼ of nodes in a neighborhood to be malicious, which is optimal [Koo]

16 RobustRB: multi-hop idea T = 1 Idea: A node waits to receive a message across T + 1 disjoint paths located in the same neighborhood.

17 Do we stop here? The protocol is optimally resilient It is also asymptotically optimal in terms of running time How well does it perform in practice? Map size30 x 30 map40 x 40 map Robust RB54.000 cycles64.000 cycles Simple Epidemic342 cycles380 cycles Quotient158169

18 Back to the drawing board… Yes, but this happens very rarely! 6x 5x

19 A new approach Insight 1: We trade some (theoretical) resiliency to make the protocol more efficient Insight 2: In many applications, the nodes are densely distributed

20 FastRB 1.Adjacent cells can communicate 2.A node VETOes if it hears that a node in its cell broadcasts “suspicious” data

21 “Neighborhood Watch” Lemma: As long as there exists no cell that only contains “pirates”, no dishonest message is ever delivered.

22 FastRB

23 Observation: The protocol becomes more robust if it requires 2 or more cells to “vote” for the message.

24 FastRB Uses the density of the network to keep byzantine nodes “in check” The resulting structure is a grid of “meta- nodes”, on which we may apply routing algorithms The protocol can be made more resilient by implementing a “voting” variant It is simpler to implement

25 FastRB: Running time comparison Protocol30x30 map40x40 map50 x 50 map FastRB2568 cycles2970 cycles3048 cycles Simple Epidemic342 cycles380 cycles400 cycles Quotient7.537.827.65

26 Plan Introduction RobustRB: the building blocks FastRB: faster is better Simulation and Performance Conclusions

27 Success rate Note: In this case, density 1 means a device has an expected number of about 20 neighbors.

28 Resilience

29 Network designer’s perspective

30 Jamming adversaries

31 Evaluation The success rate of FastRB is superior, since it requires simple connectivity Both protocols are resilient to Byzantine adversaries, as expected If nodes are distributed uniformly at random, the FastRB protocol is at least as resilient as RobustRB

32 The slide to remember 1.Wireless networks can tolerate Byzantine faults without use of cryptography 2.The state-of-the-art optimally resilient solution (RobustRB) can be slow in practice 3.There is a solution (FastRB) that achieves good levels of fault tolerance, while ensuring low overhead

33 Tolerance calculations For the experiments, R = 4, so the expected number of neighbors of a node is 80. The parameter T = 3 means that at most 3 of these should be malicious, therefore the tolerance percentage should be 3 / 80 = 3.75% For FastRB, there are about 1.5 nodes/neighborhood The expected number of neighborhoods that are entirely malicious is around 10!

Download ppt "Securing Every Bit: Authenticated Broadcast in Wireless Networks Dan Alistarh, Seth Gilbert, Rachid Guerraoui, Zarko Milosevic, and Calvin Newport."

Similar presentations

Ulams Game and Universal Communications Using Feedback Ofer Shayevitz June 2006.

Ulams Game and Universal Communications Using Feedback Ofer Shayevitz June 2006.
Multi-Party Contract Signing Sam Hasinoff April 9, 2001.

Multi-Party Contract Signing Sam Hasinoff April 9, 2001.
Impossibility of Distributed Consensus with One Faulty Process

Impossibility of Distributed Consensus with One Faulty Process
DISTRIBUTED SYSTEMS II FAULT-TOLERANT BROADCAST Prof Philippas Tsigas Distributed Computing and Systems Research Group.

DISTRIBUTED SYSTEMS II FAULT-TOLERANT BROADCAST Prof Philippas Tsigas Distributed Computing and Systems Research Group.
Henry C. H. Chen and Patrick P. C. Lee

Henry C. H. Chen and Patrick P. C. Lee
Z-MAC: a Hybrid MAC for Wireless Sensor Networks Injong Rhee, Ajit Warrier, Mahesh Aia and Jeongki Min Dept. of Computer Science, North Carolina State.

Z-MAC: a Hybrid MAC for Wireless Sensor Networks Injong Rhee, Ajit Warrier, Mahesh Aia and Jeongki Min Dept. of Computer Science, North Carolina State.
Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.

Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.
Optimal Jamming Attacks and Network Defense Policies in Wireless Sensor Networks Mingyan Li, Iordanis Koutsopoulos, Radha Poovendran (InfoComm ’07) Presented.

Optimal Jamming Attacks and Network Defense Policies in Wireless Sensor Networks Mingyan Li, Iordanis Koutsopoulos, Radha Poovendran (InfoComm ’07) Presented.
Announcements. Midterm Open book, open note, closed neighbor No other external sources No portable electronic devices other than medically necessary medical.

Announcements. Midterm Open book, open note, closed neighbor No other external sources No portable electronic devices other than medically necessary medical.
Achieving Byzantine Agreement and Broadcast against Rational Adversaries Adam Groce Aishwarya Thiruvengadam Ateeq Sharfuddin CMSC 858F: Algorithmic Game.

Achieving Byzantine Agreement and Broadcast against Rational Adversaries Adam Groce Aishwarya Thiruvengadam Ateeq Sharfuddin CMSC 858F: Algorithmic Game.
Rumor Routing Algorithm For sensor Networks David Braginsky, Computer Science Department, UCLA Presented By: Yaohua Zhu CS691 Spring 2003.

Rumor Routing Algorithm For sensor Networks David Braginsky, Computer Science Department, UCLA Presented By: Yaohua Zhu CS691 Spring 2003.
Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)
Source-Location Privacy Protection in Wireless Sensor Network Presented by: Yufei Xu Xin Wu Da Teng.

Source-Location Privacy Protection in Wireless Sensor Network Presented by: Yufei Xu Xin Wu Da Teng.
Byzantine Generals Problem: Solution using signed messages.

Byzantine Generals Problem: Solution using signed messages.
Distributed Detection Of Node Replication Attacks In Sensor Networks Presenter: Kirtesh Patil Acknowledgement: Slides on Paper originally provided by Bryan.

Distributed Detection Of Node Replication Attacks In Sensor Networks Presenter: Kirtesh Patil Acknowledgement: Slides on Paper originally provided by Bryan.
Broadcasting Protocol for an Amorphous Computer Lukáš Petrů MFF UK, Prague Jiří Wiedermann ICS AS CR.

Broadcasting Protocol for an Amorphous Computer Lukáš Petrů MFF UK, Prague Jiří Wiedermann ICS AS CR.
Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.

Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.
Monday, June 01, 2015 ARRIVE: Algorithm for Robust Routing in Volatile Environments 1 NEST Retreat, Lake Tahoe, June 17-19 2002.

Monday, June 01, 2015 ARRIVE: Algorithm for Robust Routing in Volatile Environments 1 NEST Retreat, Lake Tahoe, June
Explorations in Anonymous Communication Andrew Bortz with Luis von Ahn Nick Hopper Aladdin Center, Carnegie Mellon University, 8/19/2003.

Explorations in Anonymous Communication Andrew Bortz with Luis von Ahn Nick Hopper Aladdin Center, Carnegie Mellon University, 8/19/2003.
Robust Communications for Sensor Networks in Hostile Environments Ossama Younis and Sonia Fahmy Department of Computer Sciences, Purdue University Paolo.

Robust Communications for Sensor Networks in Hostile Environments Ossama Younis and Sonia Fahmy Department of Computer Sciences, Purdue University Paolo.

Similar presentations

Ads by Google